Sign upLogin

johnrees/fablabs

View on GitHub
Star
app/controllers/api/v2/admin_controller.rb

Summary

Maintainability
A
0 mins
Test Coverage
# frozen_string_literal: true

# AdminController
# admin-only api for system-level integrations
class Api::V2::AdminController < Api::V2::ApiController
  before_action :doorkeeper_authorize! # Requires access token for all actions

  # create a verified user, sending the welcome email
  def create_user
    error! :forbidden unless current_user.has_role? :superadmin

    logger.info 'Creating user through API v2'

    param_dict = JSON.parse(request.body.read)
    params = ActionController::Parameters.new(param_dict)

    @user = User.new user_params
    begin
      @user.save!
      @user.verify!
    rescue ActiveRecord::RecordInvalid => ex
      logger.error 'ActiveRecord::RecordInvalid'
      logger.error ex.message
      error! :bad_request
    end
    # TODO: Send verify email if not verified
    render_json ApiUserSerializer.new(@user, {}).serialized_json
  end

  def list_users
    # Your code here
    error! :forbidden unless current_user.has_role? :superadmin
    @users, @paginate = paginate User.where('')
    options = {}
    options[:meta] = { 'total-pages' => @paginate[:pages] }
    options[:links] = @paginate

    render_json ApiUserSerializer.new(@users, options).serialized_json
  end

  def search_users
    # Your code here
    error! :forbidden unless current_user.has_role? :superadmin

    data = params.require(:data).permit(:username, :email)

    @query = User.all

    if data['username'].present?
      @query = @query.where('UPPER(username) = UPPER(?)', data['username'].to_s)
    end

    if data['email'].present?
      @query = @query.where('UPPER(email) = UPPER(?)', data['email'].to_s)
    end

    @users, @paginate = paginate @query

    # Your code hereda
    options = {}
    options[:meta] = { 'total-pages' => @paginate[:pages] }
    options[:links] = @paginate

    render_json ApiUserSerializer.new(@users, options).serialized_json
  end

  def get_user
    error! :forbidden unless current_user.has_role? :superadmin
    options = {}
    @user = User.friendly.find(params[:slug])
    render_json ApiUserSerializer.new(@user, options).serialized_json
  end

  private

  def user_params
    params.require(:data).permit(
      :agree_policy_terms,
      :username,
      :first_name,
      :last_name,
      :email,
      :email_fallback,
      :phone,
      :password,
      :password_confirmation,
      :country_code,
      :avatar,
      :use_metric,
      :bio,
      :url,
      links_attributes: [:id, :link_id, :url, '_destroy']
    )
  end
end